CVE-2023-5245 - OpenCVE

FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory. When creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract(). Arbitrary file creation can directly lead to code execution

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Combust	Mleap

Configuration 1 [-]

OR	cpe:2.3:a:combust:mleap:0.18.0:::::::*
	cpe:2.3:a:combust:mleap:0.23.0:::::::*

No data.

References

Link	Providers
https://github.com/combust/mleap/pull/866#issuecomment-1738032225
https://research.jfrog.com/vulnerabilities/mleap-path-traversal-rce-xray-532656/

History

No history.

MITRE

Status: PUBLISHED

Assigner: JFROG

Published: 2023-11-15T12:52:18.656Z

Updated: 2024-08-02T07:52:08.515Z

Reserved: 2023-09-28T06:08:57.423Z

Link: CVE-2023-5245

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-11-15T13:15:07.457

Modified: 2023-11-22T22:39:07.763

Link: CVE-2023-5245

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-5245", "assignerOrgId": "48a46f29-ae42-4e1d-90dd-c1676c1e5e6d", "state": "PUBLISHED", "assignerShortName": "JFROG", "dateReserved": "2023-09-28T06:08:57.423Z", "datePublished": "2023-11-15T12:52:18.656Z", "dateUpdated": "2024-08-02T07:52:08.515Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://mvnrepository.com", "packageName": "ml.combust.mleap.mleap-tensorflow", "versions": [{"version": "0.18.0", "lessThan": "0.23.1", "status": "affected", "versionType": "maven"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory.</p><p>When creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract().</p><p>Arbitrary file creation can directly lead to code execution</p>"}], "value": "FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory.\n\nWhen creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract().\n\nArbitrary file creation can directly lead to code execution\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "48a46f29-ae42-4e1d-90dd-c1676c1e5e6d", "shortName": "JFROG", "dateUpdated": "2024-07-15T00:27:54.327174Z"}, "references": [{"tags": ["patch"], "url": "https://github.com/combust/mleap/pull/866#issuecomment-1738032225"}, {"tags": ["third-party-advisory"], "url": "https://research.jfrog.com/vulnerabilities/mleap-path-traversal-rce-xray-532656/"}], "source": {"discovery": "EXTERNAL"}, "title": "Using MLeap for loading a saved model (zip archive) can lead to path traversal/arbitrary file creation and possibly remote code execution."}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:52:08.515Z"}, "title": "CVE Program Container", "references": [{"tags": ["patch", "x_transferred"], "url": "https://github.com/combust/mleap/pull/866#issuecomment-1738032225"}, {"tags": ["third-party-advisory", "x_transferred"], "url": "https://research.jfrog.com/vulnerabilities/mleap-path-traversal-rce-xray-532656/"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:combust:mleap:0.18.0:*:*:*:*:*:*:*", "matchCriteriaId": "84FDDCAB-F580-4036-BDF5-3EBC2C7D6CB7", "vulnerable": true}, {"criteria": "cpe:2.3:a:combust:mleap:0.23.0:*:*:*:*:*:*:*", "matchCriteriaId": "5BBED8B0-FD39-44C2-A8E9-29734D62D3BA", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory.\n\nWhen creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract().\n\nArbitrary file creation can directly lead to code execution\n\n"}, {"lang": "es", "value": "FileUtil.extract() enumera todas las entradas del archivo zip y extrae cada archivo sin validar si las rutas de los archivos en el archivo est\u00e1n fuera del directorio deseado. Al crear una instancia de TensorflowModel usando el formato save_model y un modelo de tensorflow exportado, la funci\u00f3n apply() invoca la implementaci\u00f3n vulnerable de FileUtil.extract(). La creaci\u00f3n arbitraria de archivos puede conducir directamente a la ejecuci\u00f3n del c\u00f3digo"}], "id": "CVE-2023-5245", "lastModified": "2023-11-22T22:39:07.763", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 5.9, "source": "reefs@jfrog.com", "type": "Secondary"}]}, "published": "2023-11-15T13:15:07.457", "references": [{"source": "reefs@jfrog.com", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/combust/mleap/pull/866#issuecomment-1738032225"}, {"source": "reefs@jfrog.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://research.jfrog.com/vulnerabilities/mleap-path-traversal-rce-xray-532656/"}], "sourceIdentifier": "reefs@jfrog.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "reefs@jfrog.com", "type": "Primary"}]}